This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/TuWv3N1-unV3Eu3hIWcQWgFmKPQ.roa File: TuWv3N1-unV3Eu3hIWcQWgFmKPQ.roa (raw, json) Hash identifier: J1hOIcfa6XqS5M+c4PzgE80mhXmq9LomS1O6BvUnhgQ= Subject key identifier: 4E:E5:AF:DC:DD:7E:BA:75:77:12:ED:E1:21:67:10:5A:01:66:28:F4 Certificate issuer: /CN=c23642d1ab39d309ec5f33e4e8814adc3584825f Certificate serial: 019B7E39001791C56AAFEE75A93458163E6C Authority key identifier: C2:36:42:D1:AB:39:D3:09:EC:5F:33:E4:E8:81:4A:DC:35:84:82:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjZC0as50wnsXzPk6IFK3DWEgl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/TuWv3N1-unV3Eu3hIWcQWgFmKPQ.roa Signing time: Fri 02 Jan 2026 10:20:23 +0000 ROA not before: Fri 02 Jan 2026 10:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39368 IP address blocks: 185.211.56.0/24 maxlen: 24 185.211.57.0/24 maxlen: 24 185.211.58.0/24 maxlen: 24 185.211.59.0/24 maxlen: 24 193.58.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/wjZC0as50wnsXzPk6IFK3DWEgl8.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/wjZC0as50wnsXzPk6IFK3DWEgl8.mft rsync://rpki.ripe.net/repository/DEFAULT/wjZC0as50wnsXzPk6IFK3DWEgl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:00:17:91:c5:6a:af:ee:75:a9:34:58:16:3e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c23642d1ab39d309ec5f33e4e8814adc3584825f Validity Not Before: Jan 2 10:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ee5afdcdd7eba757712ede12167105a016628f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:8e:0c:05:f9:e1:9e:85:32:32:33:e3:15: 62:11:30:62:cd:fe:97:7d:fa:a9:19:8d:28:3a:cd: d2:b1:c8:d1:e5:44:80:85:f9:81:c6:5b:5d:a8:89: 43:ca:19:63:ab:93:95:2a:f2:1d:bc:16:a2:15:b1: 55:2a:2a:a3:93:ab:51:c1:47:1e:78:a1:54:55:d0: 29:74:c4:36:89:38:1b:a5:58:b3:9d:8d:ef:a9:6a: 2c:f1:e3:bc:52:e2:60:e7:c5:28:db:42:ff:da:f7: 4f:50:f5:fc:3c:4d:01:b5:94:4e:c7:fe:f1:bc:a9: c8:f2:4c:f3:71:b6:a2:61:2c:df:64:1d:5b:17:26: bc:fe:94:fe:12:d9:ed:8d:6c:d8:52:ce:48:71:dc: 51:1c:38:5c:81:66:77:bf:58:c7:56:ed:7b:1b:2b: df:7e:bc:f7:c9:b4:11:49:f8:e4:76:09:f9:96:bf: 9c:ca:32:dc:6e:05:83:7d:b7:5c:06:8b:37:b9:04: a3:fe:08:e1:df:45:66:c9:56:1f:6c:4e:07:e7:d9: 35:6a:a7:2e:c8:eb:c2:0d:d5:bd:56:b7:37:56:dc: 9d:63:e8:72:ba:b7:dc:8d:f0:7e:c2:90:83:3f:2b: 6a:31:7e:45:87:df:25:be:90:65:f3:be:78:42:5f: 05:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E5:AF:DC:DD:7E:BA:75:77:12:ED:E1:21:67:10:5A:01:66:28:F4 X509v3 Authority Key Identifier: keyid:C2:36:42:D1:AB:39:D3:09:EC:5F:33:E4:E8:81:4A:DC:35:84:82:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjZC0as50wnsXzPk6IFK3DWEgl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/TuWv3N1-unV3Eu3hIWcQWgFmKPQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/wjZC0as50wnsXzPk6IFK3DWEgl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.211.56.0/22 193.58.119.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0c:dd:df:0c:96:0e:73:7c:73:05:20:af:46:fa:27:0a:1c: 96:0f:26:13:ec:84:c2:3f:56:e8:62:b2:4c:32:f5:08:cf:6c: a8:cb:14:77:d2:d3:4c:f9:02:a7:5e:be:a0:6d:df:26:a1:cd: 7c:28:03:40:65:d6:ad:49:aa:9e:27:5c:5c:c1:b8:40:c1:f7: 4c:53:95:30:c5:b0:cf:8b:6c:64:4b:8f:6f:48:44:c4:63:29: 0d:19:60:63:24:b3:de:33:dc:24:d8:3f:4b:68:4e:28:a5:bd: 33:37:42:a3:41:e5:0a:1b:5c:6e:fc:0a:0c:63:67:30:b5:84: e9:89:4a:a3:1c:1b:2a:f6:1f:b2:44:27:24:de:df:55:4d:6c: 50:73:6e:4b:85:de:17:38:85:4d:1b:14:cd:e2:34:4f:9b:34: 89:96:ba:ea:4c:69:b6:4e:57:4d:2a:cc:9c:2d:f0:e5:b3:f0: d1:5a:8d:91:b4:29:4a:ab:67:ee:e7:61:b8:5f:95:ef:90:64: 9c:49:e8:c5:3f:e9:11:1b:89:97:67:01:e5:47:2c:a3:00:58: fe:d9:9f:a4:c0:67:e3:81:71:ee:88:c5:40:80:99:e3:37:de: 96:b4:47:81:0b:4f:2b:1b:b4:ab:9c:9f:ad:56:eb:d2:61:8c: c1:67:55:6f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OQAXkcVqr+51qTRYFj5sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyMzY0MmQxYWIzOWQzMDllYzVmMzNlNGU4ODE0YWRjMzU4 NDgyNWYwHhcNMjYwMTAyMTAyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWU1YWZkY2RkN2ViYTc1NzcxMmVkZTEyMTY3MTA1YTAxNjYyOGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1WODAX54Z6FMjIz4xViETBizf6X ffqpGY0oOs3SscjR5USAhfmBxltdqIlDyhljq5OVKvIdvBaiFbFVKiqjk6tRwUce eKFUVdApdMQ2iTgbpViznY3vqWos8eO8UuJg58Uo20L/2vdPUPX8PE0BtZROx/7x vKnI8kzzcbaiYSzfZB1bFya8/pT+EtntjWzYUs5IcdxRHDhcgWZ3v1jHVu17Gyvf frz3ybQRSfjkdgn5lr+cyjLcbgWDfbdcBos3uQSj/gjh30VmyVYfbE4H59k1aqcu yOvCDdW9Vrc3VtydY+hyurfcjfB+wpCDPytqMX5Fh98lvpBl8754Ql8FgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFE7lr9zdfrp1dxLt4SFnEFoBZij0MB8GA1UdIwQY MBaAFMI2QtGrOdMJ7F8z5OiBStw1hIJfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2paQzBhczUwd25zWHpQazZJRkszRFdFZ2w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lNDE2OTgtZTdhYy00MThjLWI5MWQt MjI2Nzk2OGI2NTJmLzEvVHVXdjNOMS11blYzRXUzaElXY1FXZ0ZtS1BRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9lNDE2OTgtZTdhYy00MThjLWI5MWQtMjI2Nzk2OGI2NTJm LzEvd2paQzBhczUwd25zWHpQazZJRkszRFdFZ2w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCudM4AwQA wTp3MA0GCSqGSIb3DQEBCwUAA4IBAQCMDN3fDJYOc3xzBSCvRvonChyWDyYT7ITC P1boYrJMMvUIz2yoyxR30tNM+QKnXr6gbd8moc18KANAZdatSaqeJ1xcwbhAwfdM U5UwxbDPi2xkS49vSETEYykNGWBjJLPeM9wk2D9LaE4opb0zN0KjQeUKG1xu/AoM Y2cwtYTpiUqjHBsq9h+yRCck3t9VTWxQc25Lhd4XOIVNGxTN4jRPmzSJlrrqTGm2 TldNKsycLfDls/DRWo2RtClKq2fu52G4X5XvkGScSejFP+kRG4mXZwHlRyyjAFj+ 2Z+kwGfjgXHuiMVAgJnjN96WtEeBC08rG7SrnJ+tVuvSYYzBZ1Vv -----END CERTIFICATE-----Generated at Sun Jan 25 15:28:56 2026 by rpki-client